Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alcatel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-2804
The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, and 6855 with firmware prior to 6.6.4.309.R01 and 6.6.5.x prior to 6.6.5.80.R02 generates weak session identifiers, which allows remote malicious users to hijack arbitrary sessions via a bru...
Alcatel-lucent Omniswitch Firmware
8.5
CVSSv2
CVE-2007-5361
The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and previous versions caches an IP address during a TFTP request from an IP Touch phone, and uses this IP address as the destination for all subsequent VoIP packets to this phone, which allows remote malicious user...
Alcatel-lucent Omnipcx
2.1
CVSSv2
CVE-2002-0294
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system.
Alcatel-lucent Omnipcx 4400
4.6
CVSSv2
CVE-2002-0295
Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges.
Alcatel-lucent Omnipcx 4400
10
CVSSv2
CVE-2002-1691
Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote malicious users to gain unauthorized access.
Alcatel-lucent Omnipcx 4400
5
CVSSv2
CVE-2003-1108
The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Alcatel-lucent Omnipcx 5.0
6.8
CVSSv2
CVE-2015-4586
Cross-site request forgery (CSRF) vulnerability in Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL with firmware 1.0.0.20h.HOL allows remote malicious users to hijack the authentication of administrators for requests that create a user account via an add_user action in a request to...
Alcatel-lucent Cellpipe 7130 Rg 5ae.m2013 Hol Firmware 1.0.0.20h.hol
10
CVSSv2
CVE-2008-1331
cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 prior to 210/091.001, OXO600 prior to 610/014.001, and other versions, allows remote malicious users to execute arbitrary commands and "obtain OXO resources" via shell metacharacters in the i...
Alcatel-lucent Omnipcx Office
1 EDB exploit
5
CVSSv2
CVE-2002-0119
Alcatel Speed Touch Home ADSL Modem allows remote malicious users to cause a denial of service (reboot) via a network scan with unusual packets, such as nmap with OS detection.
Alcatel Speed Touch Home -
10
CVSSv2
CVE-2007-3010
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.
Alcatel-lucent Omnipcx 7.1
3 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »